mod_jail 0.1 review
Downloadmod_jail makes running Apache 1.3 in a secure FreeBSD jail prison easy. mod_jail is also able to change the securelevel within a c
|
|
mod_jail makes running Apache 1.3 in a secure FreeBSD jail prison easy.
mod_jail is also able to change the securelevel within a created jail prison.
Requirements:
apache13-dev
mysql-dev
Installation:
Install mod_myuserdir:
make install (as root)
Apache:
Edit apache config, you may use httpd.conf.add as example, make shure that mod_jail.so is first after ClearModuleList.
LoadModule jail_module libexec/apache/mod_jail.so
# ...
ClearModuleList
AddModule mod_jail.c
# ...
#
< IfModule mod_jail.c >
jail_rootdir "/usr/local/www"
jail_hostname "www.localhost.net"
jail_address 192.168.0.1
jail_scrlevel 3
< /IfModule >
All parameters must be set.
Make it all working:
Just restart apache:
apachectl stop; apachectl start
So, it should work now. If verion of your FreeBSD is >= 5.1, you can see jail by jls command:
# jls
JID IP Address Hostname Path
50 192.168.0.1 www.localhost.net /usr/local/www
This module is tested to compile and work on FreeBSD 6.0 and 6.1. I expect it to work on any FreeBSD > 4.0
mod_jail 0.1 search tags